From 6aa4a9bd1648237cac01724932efdd991786441e Mon Sep 17 00:00:00 2001
From: Stefan Metzmacher <metze@samba.org>
Date: Thu, 7 Oct 2004 15:13:20 +0000
Subject: r2853: add torture test to find the defaultNamingContext on the
 RootDSE

try a sasl sealed CompareRequest

abartlet: we need to check how SINGING only can work,
          it failed for me:-(

metze
(This used to be commit 1dabd04e265bbc1e8335f816708c2639746d9afd)
---
 source4/torture/ldap/common.c | 80 +++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 80 insertions(+)

(limited to 'source4/torture/ldap/common.c')

diff --git a/source4/torture/ldap/common.c b/source4/torture/ldap/common.c
index 6c3d0c7415..48e81b42fb 100644
--- a/source4/torture/ldap/common.c
+++ b/source4/torture/ldap/common.c
@@ -102,3 +102,83 @@ NTSTATUS torture_ldap_close(struct ldap_connection *conn)
 	return NT_STATUS_OK;
 }
 
+BOOL ldap_sasl_send_msg(struct ldap_connection *conn, struct ldap_message *msg,
+		   const struct timeval *endtime)
+{
+	NTSTATUS status;
+	DATA_BLOB request;
+	BOOL result;
+	DATA_BLOB creds;
+	DATA_BLOB pdu;
+	int len;
+	ASN1_DATA asn1;
+	TALLOC_CTX *mem_ctx;
+
+	msg->messageid = conn->next_msgid++;
+
+	if (!ldap_encode(msg, &request))
+		return False;
+
+	status = gensec_seal_packet(conn->gensec, 
+					    msg->mem_ctx, 
+					    request.data, request.length,
+					    request.data, request.length,
+					    &creds);
+	if (!NT_STATUS_IS_OK(status)) {
+		DEBUG(0,("gensec_seal_packet: %s\n",nt_errstr(status)));
+		return False;
+	}
+
+	len = 4 + creds.length + request.length;
+	pdu = data_blob_talloc(msg->mem_ctx, NULL, len);
+	RSIVAL(pdu.data, 0, len-4);
+	memcpy(pdu.data + 4, creds.data, creds.length);
+	memcpy(pdu.data + 4 + creds.length, request.data, request.length);
+
+	result = (write_data_until(conn->sock, pdu.data, pdu.length,
+				   endtime) == pdu.length);
+	if (!result)
+		return result;
+
+	pdu = data_blob(NULL, 0x4000);
+	data_blob_clear(&pdu);
+
+	result = (read_data_until(conn->sock, pdu.data, 4, NULL) == 4);
+	if (!result)
+		return result;
+
+	len = RIVAL(pdu.data,0);
+
+	result = (read_data_until(conn->sock, pdu.data + 4, MIN(0x4000,len), NULL) == len);
+	if (!result)
+		return result;
+
+	pdu.length = 4+len;
+
+	creds = data_blob(pdu.data + 4 , gensec_sig_size(conn->gensec));
+
+	request = data_blob(pdu.data + (4 + creds.length), pdu.length - (4 + creds.length));
+
+	status = gensec_unseal_packet(conn->gensec,
+			     msg->mem_ctx,
+			     request.data, request.length,
+			     request.data, request.length,
+			     &creds);
+	if (!NT_STATUS_IS_OK(status)) {
+		DEBUG(0,("gensec_unseal_packet: %s\n",nt_errstr(status)));
+		return False;
+	}
+
+	mem_ctx = msg->mem_ctx;
+	ZERO_STRUCTP(msg);
+	msg->mem_ctx = mem_ctx;
+
+	asn1_load(&asn1, request);
+	if (!ldap_decode(&asn1, msg)) {
+		return False;
+	}
+
+	result = True;
+
+	return result;
+}
-- 
cgit